Search for:
  • Home
  • Cisco
    • CCNA
      • CCNA Devnet
      • CCNA Cyber Ops
      • CCNA Other
    • CCNP/CCIE
      • CCNP Enterprise(Wireless)
        • Core Exams
        • Concentration Exams
      • CCNP Service Provider
        • Core Exams
        • Concentration Exams
      • CCNP Data Center
        • Core Exams
        • Concentration Exams
      • CCNP Security
        • Core Exams
        • Concentration Exams
      • CCNP Collaboration
        • Core Exams
        • Concentration Exams
      • CCNP DEVNet
        • Core Exams
        • Concentration Exams
      • CCNP Design
    • Other
  • CCIE Lab
    • CCIE EI Lab
    • CCIE DC Lab
    • CCIE Security Lab
    • CCIE Training
      • CCIE Enterprise Infrastructure Training
  • PMI
    • PMP
    • ACP
    • RMP
    • PgMP
    • PBA
  • ISACA
    • CISM
    • CISA
  • AWS
  • Microsoft
  • Others
    • GCIH
    • Palo Alto
    • Huawei
    • CompTIA
    • Oracle
    • Fortinet
    • Aruba
    • Python
    • CEHV10
    • VMware
  • News

Sign In

Lost your password?

Not a member yet? Sign Up
  • phone +86 18344981205
  • email support@spoto.net
Home
  • Home
  • Cisco
    • CCNA
      • CCNA Devnet
      • CCNA Cyber Ops
      • CCNA Other
    • CCNP/CCIE
      • CCNP Enterprise(Wireless)
        • Core Exams
        • Concentration Exams
      • CCNP Service Provider
        • Core Exams
        • Concentration Exams
      • CCNP Data Center
        • Core Exams
        • Concentration Exams
      • CCNP Security
        • Core Exams
        • Concentration Exams
      • CCNP Collaboration
        • Core Exams
        • Concentration Exams
      • CCNP DEVNet
        • Core Exams
        • Concentration Exams
      • CCNP Design
    • Other
  • CCIE Lab
    • CCIE EI Lab
    • CCIE DC Lab
    • CCIE Security Lab
    • CCIE Training
      • CCIE Enterprise Infrastructure Training
  • PMI
    • PMP
    • ACP
    • RMP
    • PgMP
    • PBA
  • ISACA
    • CISM
    • CISA
  • AWS
  • Microsoft
  • Others
    • GCIH
    • Palo Alto
    • Huawei
    • CompTIA
    • Oracle
    • Fortinet
    • Aruba
    • Python
    • CEHV10
    • VMware
  • News
perm_identity Get Started

Blog

Home > News > Cisco > The CISSP Exam and Security Models

The CISSP Exam and Security Models

access_time2019-09-03
perm_identity Posted by spoto
folder_open Cisco
CISSP1

Security Models included in the CISSP Exam:

Security models of control are to be utilized for determining about how security would be implemented, what subjects could be accessing the system, and what objects they would have access to. Simply stated, they would be a way to formalize security policy. Security models of control are typically implemented by enforcing confidentiality, integrity, or other controls. Keep in mind that each of these models would be laying out broad guidelines and is not specific in nature. Before we discuss them if you wish to have the CISSP in a single attempt, gain it by the prep courses available at SPOTO.

  •    State Machine Model

The state machine model is going to be based on a finite state machine. State machines are going to be utilizing to model complex systems and deals with acceptors, state variables, recognizes, and transaction functions. The state machine would be defining the behavior of a finite number of states, the transitions between those states, as well as actions that could occur.

  •    Finite state model

A state machine model is going to monitor the status of the system in order to prevent it from slipping into an insecure state. Systems that would be supporting the state machine model would need to have all their possible states examined to verify that all processes are controlled. The state machine concept is going to serves as the basis of many security models. The model is going to be valued for knowing in what state the system will reside.

  •    Information Flow Model

The Information Flow model is considered to be an extension of the state machine concept as well as serves as the basis of design for both the Biba models and Bell-LaPadula models, which would be discussed in the sections that follow. The Information Flow model is going to consists of objects, state transitions, and lattice states. The real goal of the information flow model is preventing unauthorized, insecure information flow in any direction. This model and others could make the use of guards. Guards are going to be allowed the exchange of data between various systems.

  •    Noninterference Model

The Noninterference model as defined by Meseguer and Goguen was designed for making sure those subjects and objects of different levels don’t interfere with the objects and subjects of other levels. The Noninterference model would be utilizing inputs and outputs of either low or high sensitivity. Each data access that would be attempted is independent of all others and data cannot cross security boundaries.

  •    Bell-LaPadula

The Bell-LaPadula state machine model would be enforcing confidentiality. The Bell-LaPadula model is going to utilize mandatory access control to enforce the DoD multilevel security policy. For a subject in order to access information, he must have a clear need so as to know and meet or exceed the information’s classification level.

The Bell-LaPadula model would be defined by the following properties:

  •    Simple security property (ss property)

This property would be stating that a subject at one level of confidentiality is considered wouldn’t be allowed to read the information at a higher level of confidentiality. This is sometimes would be referred to as “no read up.”

  •    Star * security property

This property is going to state that a subject at one level of confidentiality isn’t going to be allowed to write information to a lower level of confidentiality. This would also be known as “no write-down.”

  •    Strong star * property

This property states that a subject couldn’t read or write to the object of higher or lower sensitivity.

If you wish to learn more about the Security Models, you could do it through the prep courses offered by the SPOTO.

Post Views: 510
Tags: cissp certification exam dumpscissp certificaton exam practices
Newer NAT64 Technology: Connecting IPv6 and IPv4 Networks
Older Software Development Security Applied for CISSP

Leave a Reply Cancel reply

Cisco Course

Latest Passing Reports

2.18-HPE6-A70
2.18-HPE6-A70
2.15-nse4
2.15-nse4
2.19-200-301
2.19-200-301
pmp
pmp
CCIEf Lab Exam
Categories
  • ACP
  • Aruba
  • AWS
  • CCIE
  • CCIE Lab
  • CCNA
  • CCNP
  • CEH v10
  • Check Point
  • CISA
  • Cisco
  • CISM
  • CISSP
  • CompTIA
  • COVID-19 News
  • F5
  • Fortinet
  • Free Study Materials
  • Huawei
  • ISACA
  • ISC
  • ITIL V4
  • Juniper
  • Linux
  • Microsoft
  • NOKIA
  • Oracle
  • OTHER
  • PCCSA
  • PCNSA
  • PCNSE
  • PgMP
  • PMI
  • PMP
  • python
  • Redhat
  • RMP
  • SPOTO News
  • VMware
  • 中文战报
Recent Posts
  • How long would it take to learn CompTIA A+?
  • What Is CISA Exam?
  • Can you pass PMP without studying?
  • Can I learn AWS on my own?
  • How many times can you fail the Cisco exam?
Recent Comments
  • derry on CCNA RS 200-125 Cisco Certified Network Associate Exam
  • Felicia on CCIE Routing and Switching V5.0 Lab Exam
  • Abed Kamukwema on Microsoft Certifications 70-741 MCSA Networking with Windows Server 2016 Exam
  • Rumesh Dushmantha on How Do I Verify a Cisco Certification?
  • Felix Kessy on CISA Certified Information Systems Auditor Exam
Tags
AWS Certification exam AWS certification exam dumps AWS Exam dumps AWS exam questions and answers AWS practice exam AWS Practice Tests AWS sample questions CCIE Certification exam ccie certification exam dumps ccna 200-301 exam dumps CCNA Certification exam dumps CCNA exam dumps CCNA Exam questions and answers CCNA practice exam CCNA practice tests CCNP exam dumps cisa exam dumps CISA exam questions and answers CISA practice tests Cisco certification cisco certification exam dumps cisco exam dumps Cisco exam questions and answers CISM exam dumps CISM Practice Tests CISSP answers and questions CISSP Certification exam cissp certification exam dumps cissp certification exam practices Cissp exam dumps Microsoft exam dumps pmp certification PMP certification exam dumps pmp exam PMP exam answers and questions pmp exam dumps PMP exam practice tests PMP Exam questions and answers PMP practice exam PMP practice exams PMP practice tests PMP sample questions SPOTO IT Training SPOTO pass news 思博ccie认证

SPOTO CLUB IT Certifications Dumps LOGO

SPOTO, founded in 2003, focus on online IT certification training for 17 years. SPOTO stands for Service, Professional, Outstanding, Teamwork and Obtain.

  • location_on
    Fuzhou, FuJian, China
  • phone_android
    +86 18344981205
Quick Links
  • CCIE Lab
  • Cisco Certifications
  • CCNA
  • CCNP
  • CCIE
  • CCDE
  • AWS
Newsletter

Don’t miss anything, sign up now and keep informed about our company.


User Links
Login | Register | News | Events | About Us | Contact Privacy
© 2021 Home. All rights reserved
keyboard_arrow_up

New 2020 Cisco CCNA CCNP Exam Dumps Are Available Now